CVE-2017-3112

An issue was discovered in Adobe Flash Player 27.0.0.183 and earlierversions. This vulnerability occurs as a result of a computation that readsdata that is past the end of the target buffer; the computation is part ofAdobePSDK metadata. The use of an invalid (out-of-range) pointer offsetduring access of internal data structure fields causes the vulnerability. Asuccessful attack can lead to sensitive data exposure.